CVE-2025-64151 MEDIUM

CVE-2025-64151

Vendor Roboticsware Pte. Ltd.
Product FA-Panel6
Weakness CWE-428
Published November 5, 2025
Last update November 5, 2025

CVSS base score

6.7/10
Attack vector Local
Attack complexity Low
Privileges required High
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Multiple Roboticsware products provided by Roboticsware PTE. LTD. register Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege.

Key dates

02Disclosure timeline

November 5, 2025 CVE published
November 5, 2025 Record updated